VYPR

video carousel slider with lightbox

by WordPress

CVEs (3)

  • CVE-2023-32797HigAug 25, 2023
    risk 0.46cvss 7.1epss 0.00

    Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution video carousel slider with lightbox plugin <= 1.0.22 versions.

  • CVE-2023-2710MedMay 16, 2023
    risk 0.40cvss 6.1epss 0.01

    The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_term parameter in versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping. This makes it possible for…

  • CVE-2023-5945MedNov 3, 2023
    risk 0.28cvss 4.3epss 0.00

    The video carousel slider with lightbox plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. This is due to missing or incorrect nonce validation on the responsive_video_gallery_with_lightbox_video_management_func() function. This makes it possible…